41 matches found
EUVD-2020-24636
Malware in sbrugna...
EUVD-2018-7280
Malware in sbrugna...
EUVD-2019-10518
Malware in sbrugna...
EUVD-2019-10516
Malware in sbrugna...
EUVD-2018-1283
Malware in sbrugna...
EUVD-2022-26029
Malicious code in bioql PyPI...
Nokia CloudBand Infrastructure Software和Nokia Container Service 安全漏洞
Nokia CloudBand Infrastructure Software and Nokia Container Service are both products of the Finnish company Nokia.Nokia CloudBand Infrastructure Software is a platform that supports the virtualization of network functions. Nokia Container Service is a container management service. A security...
Siemens SINEC INS 安全漏洞
Siemens SINEC INS is a software from Siemens, Germany, that provides centralized services for network infrastructures. Siemens SINEC INS suffers from a use of hard-coded encryption key vulnerability that can be exploited by an attacker to learn the encryption key material and decrypt arbitrary...
Cisco Releases Security Updates for Enterprise NFV Infrastructure Software
Cisco has released security updates to address multiple vulnerabilities in Enterprise NFV Infrastructure Software. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Cisco advisory cisco-sa-NFVIS-MUL-7DySRX9 an...
CVE-2022-20780
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...
Information disclosure
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...
CVE-2022-20780 Cisco Enterprise NFV Infrastructure Software Vulnerabilities
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...
CVE-2022-20779 Cisco Enterprise NFV Infrastructure Software Vulnerabilities
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...
CVE-2022-20777
Cisco Enterprise NFV Infrastructure Software (NFVIS) contains multiple vulnerabilities (CVE-2022-20777/20779/20780) that could allow an attacker to escape from a guest VM to the host, execute root-level commands, or access host data. Root causes include insufficient guest restrictions (CVE-2022-2...
PT-2022-2559 · Cisco · Cisco Enterprise Nfv Infrastructure
Name of the Vulnerable Software and Affected Versions: Cisco Enterprise NFV Infrastructure Software NFVIS affected versions not specified Description: The issue is related to multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS that could allow an attacker to escape from...
Cisco Enterprise NFV Infrastructure Software 安全漏洞
Cisco Enterprise NFV Infrastructure Software is a set of NVF infrastructure software platform from Cisco USA. The platform enables full lifecycle management of virtualization services through a central orchestrator and controller.Cisco Enterprise NFV Infrastructure Software is vulnerable to...
CVE-2021-34746 Cisco Enterprise NFV Infrastructure Software Authentication Bypass Vulnerability
A vulnerability in the TACACS+ authentication, authorization and accounting AAA feature of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an unauthenticated, remote attacker to bypass authentication and log in to an affected device as an administrator. This vulnerability is due to...
CVE-2021-1421
A vulnerability in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, local attacker to perform a command injection attack on an affected device. The vulnerability is due to insufficient validation of user-supplied input to a configuration command. An attacker could...
CVE-2021-1127
Cisco Enterprise NFV Infrastructure Software (NFVIS) web-based management interface is affected by a cross-site scripting (XSS) vulnerability caused by improper input validation of log file contents. An authenticated attacker could modify a log file to include malicious code and persuade a user t...
CVE-2020-3365
A vulnerability in the directory permissions of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, remote attacker to perform a directory traversal attack on a limited set of restricted directories. The vulnerability is due to a flaw in the logic that governs directo...